Latest Cybernews
ICO Continues Revised Public Sector Approach After Successful Trial
The UK’s Information Commissioner’s Office has decided to extend its revised public sector approach, which emphasizes warnings and reprimands over fines, following a successful two-year trial that improved data protection compliance among public sector organizations.
View full story…
New Zealand and Australia Warn of Chinese State-Sponsored Salt Typhoon Hacking Operation
New Zealand and Australia have issued a warning about a significant hacking operation by the Chinese state-sponsored group Salt Typhoon, which has targeted telecommunications companies worldwide, raising concerns over unauthorized access to sensitive communications and data.
View full story…
Ransomware Attack Exposes Data of Over 316,000 Patients at Anna Jaques Hospital
A ransomware attack by the Money Message threat actor compromised sensitive personal information of 316,342 patients at Anna Jaques Hospital, leading to significant data exposure and highlighting the urgent need for improved cybersecurity in healthcare.
View full story…
Vulnerability Management: Lessons from MOVEit Transfer and Log4j Incidents
The increasing prevalence of software vulnerabilities, exemplified by the MOVEit Transfer and Log4j incidents, underscores the urgent need for effective vulnerability prioritization strategies to mitigate organizational risks.
View full story…
Ultralytics AI Library Compromised in Supply Chain Attack
A supply chain attack has compromised the Ultralytics AI library, leading to the distribution of cryptomining software through malicious versions published on the Python Package Index.
View full story…
Ransomware Attack by Termite Group Disrupts Blue Yonder Operations
In November 2024, the Termite group launched a ransomware attack on Blue Yonder, a supply chain technology provider, resulting in significant operational disruptions for major clients and the exfiltration of sensitive data.
View full story…
US Appeals Court Upholds TikTok Divestment Law Due to National Security Concerns
A federal appeals court has upheld a law requiring TikTok’s parent company, ByteDance, to divest its stake in the app by January 2025, citing national security risks and dismissing claims of free speech violations.
View full story…
Critical Zero-Day Vulnerability Discovered in Windows NTLM Protocols
A newly identified zero-day vulnerability in Windows NTLM protocols allows attackers to capture NTLM credentials with minimal user interaction, prompting Microsoft to plan an official patch while free micropatches are currently available.
View full story…
Latest Cybernews
FCC Proposes Enhanced Cybersecurity Measures Following Salt Typhoon Attack
The FCC is tightening cybersecurity requirements for telecommunications carriers in response to the Salt Typhoon cyberattack, attributed to state-sponsored actors from China, which compromised the networks of several major US telecom providers.
View full story…
Deloitte UK Hit By Brain Cipher Ransomware Attack, 1TB Data Stolen
The ransomware group Brain Cipher has claimed responsibility for a cyberattack on Deloitte UK, asserting the theft of over 1 terabyte of sensitive data and exposing vulnerabilities in the firm’s cybersecurity infrastructure.
View full story…
Microsoft Expands Windows Recall Feature Testing to AMD and Intel PCs
Microsoft has broadened the testing of its AI-driven Windows Recall feature to include PCs with AMD and Intel chipsets, addressing privacy concerns with enhanced security measures while currently in a preview phase for Windows Insiders in Europe.
View full story…
Dismantling of Manson Market Marks Major Victory Against Cybercrime
A coordinated international law enforcement operation has successfully shut down Manson Market, a significant online platform for large-scale fraud, resulting in the seizure of over 50 servers and the arrest of two key suspects.
View full story…